it-people, profile picture
Uploaded byit-people
PDF, PPTX7,303 views

Flask patterns

The document provides an overview of advanced patterns in Flask including: 1. State management using application and request contexts to bind resources like databases. 2. Resource management using teardown callbacks to commit transactions and release resources. 3. Customizing response creation by passing response objects down a stack or replacing implicit responses. 4. Server-sent events for real-time updates using Redis pub/sub and streaming responses. 5. Separating worker processes for blocking and non-blocking tasks using tools like Gunicorn and Nginx. 6. Signing data with ItsDangerous to generate tokens and validate user activations without a database. 7. Customizing Flask like adding cache bust

Embed presentation

Download as PDF, PPTX
Advanced Flask Patterns PyCon Russia 2013 — a presentation by Armin Ronacher @mitsuhiko
-1 Who am I?
That's me ✤ Armin Ronacher ✤ @mitsuhiko ✤ Creator of Flask/Werkzeug/Jinja2
0 Focus & Caveats
Interrupt me ✤ Assumes some sense of Flask knowledge ✤ If too fast, interrupt me ✤ If not detailed enough, let me know
1 State Management
Flask States ✤ Setup State ✤ Application Context Bound ✤ Request Context Bound
Setup State >>> from flask import g >>> g.foo = 42 Traceback (most recent call last): File "<stdin>", line 1, in <module> RuntimeError: working outside of application context
Application Bound >>> ctx = app.app_context() >>> ctx.push() >>> g.foo = 42 >>> g.foo 42 >>> from flask import request >>> request.args Traceback (most recent call last): File "<stdin>", line 1, in <module> RuntimeError: working outside of request context
Request Bound >>> ctx = app.test_request_context() >>> ctx.push() >>> request.url 'http://localhost/' >>> g.foo = 42 >>> g.foo 42
Lifetimes ✤ flask.current_app ⇝ application context ✤ flask.g ⇝ application context (as of 0.10) ✤ flask.request ⇝ request context ✤ flask.session ⇝ request context
Quick Overview ✤ Application contexts are fast to create/destroy ✤ Pushing request context pushes new application context ✤ Flask 0.10 binds g to the application context ✤ Bind resources to the application context
2 Resource Management
Basic Guide ✤ Create/Destroy Application Context == Task ✤ Bind resources task wise ✤ Resources: claimed database connections, caches
Teardown Illustrated >>> from flask import Flask >>> app = Flask(__name__) >>> @app.teardown_appcontext ... def called_on_teardown(error=None): ... print 'Tearing down, error:', error ... >>> ctx = app.app_context() >>> ctx.push() >>> >>> ctx.pop() Tearing down, error: None >>> with app.app_context(): ... 1/0 ... Tearing down, error: integer division or modulo by zero Traceback (most recent call last): File "<stdin>", line 2, in <module> ZeroDivisionError: integer division or modulo by zero
Resource Management def get_database_connection(): con = getattr(g, 'database_connection', None) if con is None: g.con = con = connection_pool.get_connection() return con @app.teardown_appcontext def return_database_connection(error=None): con = getattr(g, 'database_connection', None) if con is not None: connection_pool.release_connection(con)
Responsive Resources @app.teardown_appcontext def return_database_connection(error=None): con = getattr(g, 'database_connection', None) if con is None: return if error is None: con.commit() else: con.rollback() connection_pool.release_connection(con)
Per-Task Callbacks def after_commit(f): callbacks = getattr(g, 'on_commit_callbacks', None) if callbacks is None: g.on_commit_callbacks = callbacks = [] callbacks.append(f) return f
Per-Task Callbacks @app.teardown_appcontext def return_database_connection(error=None): con = getattr(g, 'database_connection', None) if con is None: return if error is None: con.commit() callbacks = getattr(g, 'on_commit_callbacks', ()) for callback in callbacks: callback() else: con.rollback() connection_pool.release_connection(con)
Per-Task Callbacks Example def purchase_product(product, user): user.purchased_products.append(product) @after_commit def send_success_mail(): body = render_template('mails/product_purchased.txt', user=user, product=product ) send_mail(user.email_address, 'Product Purchased', body)
3 Response Creation
Response Object Passing ✤ One request object: read only ✤ Potentially many response objects, passed down a stack ✤ … can be implicitly created ✤ … can be replaced by other response objects ✤ there is no flask.response!
Implicit Response Creation @app.route('/') def index(): return render_template('index.html')
Explicit Creation from flask import make_response @app.route('/') def index(): body = render_template('index.html') response = make_response(body) response.headers['X-Powered-By'] = 'Not-PHP/1.0' return response
Customized Creation from flask import Flask, jsonify class CustomFlask(Flask): def make_response(self, rv): if hasattr(rv, 'to_json'): return jsonify(rv.to_json()) return Flask.make_response(self, rv)
Customized Creation Example class User(object): def __init__(self, id, username): self.id = id self.username = username def to_json(self): return { 'id': self.id, 'username': self.username } app = CustomFlask(__name__) @app.route('/') def index(): return User(42, 'john')
4 Server Sent Events
Basic Overview ✤ Open Socket ✤ Sends "data: <data>rnrn" packets ✤ Good idea for gevent/eventlet, bad idea for kernel level concurrency
Subscribing from redis import Redis from flask import Response, stream_with_context redis = Redis() @app.route('/streams/interesting') def stream(): def generate(): pubsub = redis.pubsub() pubsub.subscribe('interesting-channel') for event in pubsub.listen(): if event['type'] == 'message': yield 'data: %srnrn' % event['data'] return Response(stream_with_context(generate()), direct_passthrough=True, mimetype='text/event-stream')
Publishing from flask import json, redirect, url_for @app.route('/create-something', methods=['POST']) def create_something(): create_that_thing() redis.publish('interesting-channel', json.dumps({ 'event': 'created', 'kind': 'something' })) return redirect(url_for('index'))
Don't be Afraid of Proxying ✤ gunicorn/uwsgi blocking for main app ✤ gunicorn gevent for SSE ✤ nginx for unification
5 Worker Separation
supervisor config [program:worker-blocking] command=gunicorn -w 4 yourapplication:app -b 0.0.0.0:8000 [program:worker-nonblocking] command=gunicorn -k gevent -w 4 yourapplication:app -b 0.0.0.0:8001
nginx config server { listen 80; server_name example.com; location /streams { proxy_set_header Host $http_host; proxy_pass http://localhost:8001/streams; } location / { proxy_set_header Host $http_host; proxy_pass http://localhost:8000/; } }
6 Signing Stuff
Basic Overview ✤ Use itsdangerous for signing information that roundtrips ✤ Saves you from storing information in a database ✤ Especially useful for small pieces of information that need to stay around for long (any form of token etc.)
User Activation Example from flask import abort import itsdangerous serializer = itsdangerous .URLSafeSerializer(secret_key=app.config['SECRET_KEY']) ACTIVATION_SALT = 'x7fxfbxc2(;rxa8Ox16{' def get_activation_link(user): return url_for('activate', code=serializer.dumps(user.user_id, salt=ACTIVATION_SALT)) @app.route('/activate/<code>') def activate(code): try: user_id = serializer.loads(code, salt=ACTIVATION_SALT) except itsdangerous.BadSignature: abort(404) activate_the_user_with_id(user_id)
7 Customization
Simple Cache Busting from hashlib import md5 import pkg_resources ASSET_REVISION = md5(str(pkg_resources.get_distribution( 'Package-Name').version)).hexdigest())[:14] @app.url_defaults def static_cache_buster(endpoint, values): if endpoint == 'static': values['_v'] = ASSET_REVISION
Disable Parsing from flask import Flask, Request class SimpleRequest(Request): want_form_data_parsed = False data = None app = Flask(__name__) app.request_class = SimpleRequest
8 Secure Redirects
Redirect Back from urlparse import urlparse, urljoin def is_safe_url(target): ref_url = urlparse(request.host_url) test_url = urlparse(urljoin(request.host_url, target)) return test_url.scheme in ('http', 'https') and ref_url.netloc == test_url.netloc def is_different_url(url): this_parts = urlparse(request.url) other_parts = urlparse(url) return this_parts[:4] != other_parts[:4] and url_decode(this_parts.query) != url_decode(other_parts.query) def redirect_back(fallback): next = request.args.get('next') or request.referrer if next and is_safe_url(next) and is_different_url(next): return redirect(next) return redirect(fallback)
Q&A http://fireteam.net/ — Armin Ronacher — @mitsuhiko

More Related Content

PPTX
Flask – Python
byMax Claus Nunes
 
PDF
Python Flask Tutorial For Beginners | Flask Web Development Tutorial | Python...
byEdureka!
 
KEY
LvivPy - Flask in details
byMax Klymyshyn
 
PDF
Kyiv.py #17 Flask talk
byAlexey Popravka
 
PDF
Flask - Backend com Python - Semcomp 18
byLar21
 
PDF
Flask Basics
byEueung Mulyana
 
PDF
Rest API using Flask & SqlAlchemy
byAlessandro Cucci
 
PDF
Filling the flask
byJason Myers
 
Flask – Python
byMax Claus Nunes
 
Python Flask Tutorial For Beginners | Flask Web Development Tutorial | Python...
byEdureka!
 
LvivPy - Flask in details
byMax Klymyshyn
 
Kyiv.py #17 Flask talk
byAlexey Popravka
 
Flask - Backend com Python - Semcomp 18
byLar21
 
Flask Basics
byEueung Mulyana
 
Rest API using Flask & SqlAlchemy
byAlessandro Cucci
 
Filling the flask
byJason Myers
 

What's hot

PDF
Web develop in flask
byJim Yeh
 
PDF
Flask RESTful Flask HTTPAuth
byEueung Mulyana
 
PPTX
Build restful ap is with python and flask
byJeetendra singh
 
PDF
Flask Introduction - Python Meetup
byAreski Belaid
 
PDF
Python RESTful webservices with Python: Flask and Django solutions
bySolution4Future
 
PDF
Flask SQLAlchemy
byEueung Mulyana
 
PPTX
Flask restfulservices
byMarcos Lin
 
PPT
Learn flask in 90mins
byLarry Cai
 
PDF
BUILDING MODERN PYTHON WEB FRAMEWORKS USING FLASK WITH NEIL GREY
byCodeCore
 
PDF
Quick flask an intro to flask
byjuzten
 
PDF
Bootstrat REST APIs with Laravel 5
byElena Kolevska
 
PDF
Getting Started-with-Laravel
byMindfire Solutions
 
PDF
Rest api with Python
bySantosh Ghimire
 
PPTX
Laravel 5
bySudip Simkhada
 
PPTX
REST APIs in Laravel 101
bySamantha Geitz
 
PDF
Building a Dynamic Website Using Django
byNathan Eror
 
PDF
8 Minutes On Rack
bydanwrong
 
PDF
Laravel Design Patterns
byBobby Bouwmann
 
PDF
Python Flask app deployed to OPenShift using Wercker CI
byBruno Rocha
 
PDF
関西PHP勉強会 php5.4つまみぐい
byHisateru Tanaka
 
Web develop in flask
byJim Yeh
 
Flask RESTful Flask HTTPAuth
byEueung Mulyana
 
Build restful ap is with python and flask
byJeetendra singh
 
Flask Introduction - Python Meetup
byAreski Belaid
 
Python RESTful webservices with Python: Flask and Django solutions
bySolution4Future
 
Flask SQLAlchemy
byEueung Mulyana
 
Flask restfulservices
byMarcos Lin
 
Learn flask in 90mins
byLarry Cai
 
BUILDING MODERN PYTHON WEB FRAMEWORKS USING FLASK WITH NEIL GREY
byCodeCore
 
Quick flask an intro to flask
byjuzten
 
Bootstrat REST APIs with Laravel 5
byElena Kolevska
 
Getting Started-with-Laravel
byMindfire Solutions
 
Rest api with Python
bySantosh Ghimire
 
Laravel 5
bySudip Simkhada
 
REST APIs in Laravel 101
bySamantha Geitz
 
Building a Dynamic Website Using Django
byNathan Eror
 
8 Minutes On Rack
bydanwrong
 
Laravel Design Patterns
byBobby Bouwmann
 
Python Flask app deployed to OPenShift using Wercker CI
byBruno Rocha
 
関西PHP勉強会 php5.4つまみぐい
byHisateru Tanaka
 

Viewers also liked

PDF
Build website in_django
byswee meng ng
 
PPTX
Quokka CMS - Desenvolvendo web apps com Flask e MongoDB - grupy - Outubro 2015
byBruno Rocha
 
PPTX
webアプリケーションフレームワークの話
byYoshihiro Ura
 
PDF
aiohttp intro
byAnton Kasyanov
 
PDF
Rest in flask
byHamid Feizabadi
 
PPTX
Webアプリケーションフレームワーク flask
byXMLProJ2014
 
PDF
Flask Full Stack - Desenvolvendo um CMS com Flask e MongoDB
byBruno Rocha
 
PDF
Python and GIS
byAndrii Mishkovskyi
 
PDF
Writing your first web app using Python and Flask
byDanielle Madeley
 
PPTX
Introduction to Google App Engine with Python
byBrian Lyttle
 
PDF
Flask入門
byaoshiman
 
PDF
Flask勉強会その1
byMasato Kawamura
 
PDF
Making use of OpenStreetMap data with Python
byAndrii Mishkovskyi
 
PPTX
Thermo Electric Converter
byMakeNET
 
PPTX
Modes of transfer of heat
byKabir Kanha Arora
 
PPTX
Modes of heat transfer
byRIFFAT_ZAHID
 
PPTX
OpenStreetMap in 3D using Python
byMartin Christen
 
Build website in_django
byswee meng ng
 
Quokka CMS - Desenvolvendo web apps com Flask e MongoDB - grupy - Outubro 2015
byBruno Rocha
 
webアプリケーションフレームワークの話
byYoshihiro Ura
 
aiohttp intro
byAnton Kasyanov
 
Rest in flask
byHamid Feizabadi
 
Webアプリケーションフレームワーク flask
byXMLProJ2014
 
Flask Full Stack - Desenvolvendo um CMS com Flask e MongoDB
byBruno Rocha
 
Python and GIS
byAndrii Mishkovskyi
 
Writing your first web app using Python and Flask
byDanielle Madeley
 
Introduction to Google App Engine with Python
byBrian Lyttle
 
Flask入門
byaoshiman
 
Flask勉強会その1
byMasato Kawamura
 
Making use of OpenStreetMap data with Python
byAndrii Mishkovskyi
 
Thermo Electric Converter
byMakeNET
 
Modes of transfer of heat
byKabir Kanha Arora
 
Modes of heat transfer
byRIFFAT_ZAHID
 
OpenStreetMap in 3D using Python
byMartin Christen
 

Similar to Flask patterns

PDF
Flask Web Development 1st Edition Miguel Grinberg
bycjvsgfu2766
 
PPTX
Flask-Python
byTriloki Gupta
 
PDF
Python Web Applications With Flask Handon Your Flask Skills2024 Jeffrey Leon ...
bykeyroreagan
 
PPTX
Flask & Flask-restx
byammaraslam18
 
PPTX
Flask_Tutorial_Slidessssssssssssssss.pptx
bybandsmarketinfo
 
PDF
Flask docs
byKunal Sangwan
 
PPTX
Intro to flask2
byMohamed Essam
 
PPTX
Intro to flask
byMohamed Essam
 
PDF
Introduction to Flask Micro Framework
byMohammad Reza Kamalifard
 
PPTX
Flask
byMamta Kumari
 
PDF
Flask jwt authentication tutorial
byKaty Slemon
 
PPTX
python full stack development with machi
byAnandShilu1
 
PPTX
Flask Application ppt to understand the flask
byvijoho5545
 
PDF
Python and Flask introduction for my classmates Презентация и введение в flask
byNikita Lozhnikov
 
PPTX
flask frameworkbasedonPython_microframework.pptx
byalok529469
 
PDF
Introduction to rest using flask
byWekanta
 
PDF
Flask intro - ROSEdu web workshops
byAlex Eftimie
 
PDF
Google app-engine-with-python
byDeepak Garg
 
PDF
Asynchronous Architectures for Implementing Scalable Cloud Services - Evan Co...
byTwilio Inc
 
ODP
Flask
byGlen Zangirolami
 
Flask Web Development 1st Edition Miguel Grinberg
bycjvsgfu2766
 
Flask-Python
byTriloki Gupta
 
Python Web Applications With Flask Handon Your Flask Skills2024 Jeffrey Leon ...
bykeyroreagan
 
Flask & Flask-restx
byammaraslam18
 
Flask_Tutorial_Slidessssssssssssssss.pptx
bybandsmarketinfo
 
Flask docs
byKunal Sangwan
 
Intro to flask2
byMohamed Essam
 
Intro to flask
byMohamed Essam
 
Introduction to Flask Micro Framework
byMohammad Reza Kamalifard
 
Flask
byMamta Kumari
 
Flask jwt authentication tutorial
byKaty Slemon
 
python full stack development with machi
byAnandShilu1
 
Flask Application ppt to understand the flask
byvijoho5545
 
Python and Flask introduction for my classmates Презентация и введение в flask
byNikita Lozhnikov
 
flask frameworkbasedonPython_microframework.pptx
byalok529469
 
Introduction to rest using flask
byWekanta
 
Flask intro - ROSEdu web workshops
byAlex Eftimie
 
Google app-engine-with-python
byDeepak Garg
 
Asynchronous Architectures for Implementing Scalable Cloud Services - Evan Co...
byTwilio Inc
 
Flask
byGlen Zangirolami
 

More from it-people

PDF
«Про аналитику и серебряные пули» Александр Подсобляев, Rambler&Co
byit-people
 
PDF
«Scrapy internals» Александр Сибиряков, Scrapinghub
byit-people
 
PDF
«Отладка в Python 3.6: Быстрее, Выше, Сильнее» Елизавета Шашкова, JetBrains
byit-people
 
PDF
«Gevent — быть или не быть?» Александр Мокров, Positive Technologies
byit-people
 
PDF
«Ещё один Поиск Яндекса» Александр Кошелев, Яндекс
byit-people
 
PDF
«How I Learned to Stop Worrying and Love the BFG: нагрузочное тестирование со...
byit-people
 
PDF
«Write once run anywhere — почём опиум для народа?» Игорь Новиков, Scalr
byit-people
 
PDF
«Gensim — тематическое моделирование для людей» Иван Меньших, Лев Константино...
byit-people
 
PDF
«Тотальный контроль производительности» Михаил Юматов, ЦИАН
byit-people
 
PDF
«Детские болезни live-чата» Ольга Сентемова, Тинькофф Банк
byit-people
 
PDF
«Микросервисы наносят ответный удар!» Олег Чуркин, Rambler&Co
byit-people
 
PDF
«Память и Python. Что надо знать для счастья?» Алексей Кузьмин, ЦНС
byit-people
 
PDF
«Что такое serverless-архитектура и как с ней жить?» Николай Марков, Aligned ...
byit-people
 
PDF
«Python на острие бритвы: PyPy project» Александр Кошкин, Positive Technologies
byit-people
 
PDF
«PyWat. А хорошо ли вы знаете Python?» Александр Швец, Marilyn System
byit-people
 
PDF
«(Без)опасный Python», Иван Цыганов, Positive Technologies
byit-people
 
PDF
«Python of Things», Кирилл Борисов, Яндекс
byit-people
 
PDF
«Как сделать так, чтобы тесты на Swift не причиняли боль» Сычев Александр, Ra...
byit-people
 
PDF
«Клиенту и серверу нужно поговорить» Прокопов Никита, Cognician
byit-people
 
PDF
«Кошелек или деньги: сложный выбор между памятью и процессором» Алексеенко Иг...
byit-people
 
«Про аналитику и серебряные пули» Александр Подсобляев, Rambler&Co
byit-people
 
«Scrapy internals» Александр Сибиряков, Scrapinghub
byit-people
 
«Отладка в Python 3.6: Быстрее, Выше, Сильнее» Елизавета Шашкова, JetBrains
byit-people
 
«Gevent — быть или не быть?» Александр Мокров, Positive Technologies
byit-people
 
«Ещё один Поиск Яндекса» Александр Кошелев, Яндекс
byit-people
 
«How I Learned to Stop Worrying and Love the BFG: нагрузочное тестирование со...
byit-people
 
«Write once run anywhere — почём опиум для народа?» Игорь Новиков, Scalr
byit-people
 
«Gensim — тематическое моделирование для людей» Иван Меньших, Лев Константино...
byit-people
 
«Тотальный контроль производительности» Михаил Юматов, ЦИАН
byit-people
 
«Детские болезни live-чата» Ольга Сентемова, Тинькофф Банк
byit-people
 
«Микросервисы наносят ответный удар!» Олег Чуркин, Rambler&Co
byit-people
 
«Память и Python. Что надо знать для счастья?» Алексей Кузьмин, ЦНС
byit-people
 
«Что такое serverless-архитектура и как с ней жить?» Николай Марков, Aligned ...
byit-people
 
«Python на острие бритвы: PyPy project» Александр Кошкин, Positive Technologies
byit-people
 
«PyWat. А хорошо ли вы знаете Python?» Александр Швец, Marilyn System
byit-people
 
«(Без)опасный Python», Иван Цыганов, Positive Technologies
byit-people
 
«Python of Things», Кирилл Борисов, Яндекс
byit-people
 
«Как сделать так, чтобы тесты на Swift не причиняли боль» Сычев Александр, Ra...
byit-people
 
«Клиенту и серверу нужно поговорить» Прокопов Никита, Cognician
byit-people
 
«Кошелек или деньги: сложный выбор между памятью и процессором» Алексеенко Иг...
byit-people
 

Flask patterns

  • 1.
    Advanced Flask Patterns PyCon Russia 2013 — a presentation by Armin Ronacher @mitsuhiko
  • 2.
    -1 Who am I?
  • 3.
    That's me ✤ ArminRonacher ✤ @mitsuhiko ✤ Creator of Flask/Werkzeug/Jinja2
  • 4.
    0 Focus & Caveats
  • 5.
    Interrupt me ✤ Assumessome sense of Flask knowledge ✤ If too fast, interrupt me ✤ If not detailed enough, let me know
  • 6.
    1 State Management
  • 7.
    Flask States ✤ SetupState ✤ Application Context Bound ✤ Request Context Bound
  • 8.
    Setup State >>> fromflask import g >>> g.foo = 42 Traceback (most recent call last): File "<stdin>", line 1, in <module> RuntimeError: working outside of application context
  • 9.
    Application Bound >>> ctx = app.app_context() >>> ctx.push() >>> g.foo = 42 >>> g.foo 42 >>> from flask import request >>> request.args Traceback (most recent call last): File "<stdin>", line 1, in <module> RuntimeError: working outside of request context
  • 10.
    Request Bound >>> ctx= app.test_request_context() >>> ctx.push() >>> request.url 'http://localhost/' >>> g.foo = 42 >>> g.foo 42
  • 11.
    Lifetimes ✤ flask.current_app ⇝application context ✤ flask.g ⇝ application context (as of 0.10) ✤ flask.request ⇝ request context ✤ flask.session ⇝ request context
  • 12.
    Quick Overview ✤ Applicationcontexts are fast to create/destroy ✤ Pushing request context pushes new application context ✤ Flask 0.10 binds g to the application context ✤ Bind resources to the application context
  • 13.
    2 Resource Management
  • 14.
    Basic Guide ✤ Create/DestroyApplication Context == Task ✤ Bind resources task wise ✤ Resources: claimed database connections, caches
  • 15.
    Teardown Illustrated >>> from flask import Flask >>> app = Flask(__name__) >>> @app.teardown_appcontext ... def called_on_teardown(error=None): ... print 'Tearing down, error:', error ... >>> ctx = app.app_context() >>> ctx.push() >>> >>> ctx.pop() Tearing down, error: None >>> with app.app_context(): ... 1/0 ... Tearing down, error: integer division or modulo by zero Traceback (most recent call last): File "<stdin>", line 2, in <module> ZeroDivisionError: integer division or modulo by zero
  • 16.
    Resource Management def get_database_connection(): con = getattr(g, 'database_connection', None) if con is None: g.con = con = connection_pool.get_connection() return con @app.teardown_appcontext def return_database_connection(error=None): con = getattr(g, 'database_connection', None) if con is not None: connection_pool.release_connection(con)
  • 17.
    Responsive Resources @app.teardown_appcontext def return_database_connection(error=None): con = getattr(g, 'database_connection', None) if con is None: return if error is None: con.commit() else: con.rollback() connection_pool.release_connection(con)
  • 18.
    Per-Task Callbacks def after_commit(f): callbacks = getattr(g, 'on_commit_callbacks', None) if callbacks is None: g.on_commit_callbacks = callbacks = [] callbacks.append(f) return f
  • 19.
    Per-Task Callbacks @app.teardown_appcontext def return_database_connection(error=None): con = getattr(g, 'database_connection', None) if con is None: return if error is None: con.commit() callbacks = getattr(g, 'on_commit_callbacks', ()) for callback in callbacks: callback() else: con.rollback() connection_pool.release_connection(con)
  • 20.
    Per-Task Callbacks Example defpurchase_product(product, user): user.purchased_products.append(product) @after_commit def send_success_mail(): body = render_template('mails/product_purchased.txt', user=user, product=product ) send_mail(user.email_address, 'Product Purchased', body)
  • 21.
    3 Response Creation
  • 22.
    Response Object Passing ✤One request object: read only ✤ Potentially many response objects, passed down a stack ✤ … can be implicitly created ✤ … can be replaced by other response objects ✤ there is no flask.response!
  • 23.
    Implicit Response Creation @app.route('/') defindex(): return render_template('index.html')
  • 24.
    Explicit Creation from flaskimport make_response @app.route('/') def index(): body = render_template('index.html') response = make_response(body) response.headers['X-Powered-By'] = 'Not-PHP/1.0' return response
  • 25.
    Customized Creation from flaskimport Flask, jsonify class CustomFlask(Flask): def make_response(self, rv): if hasattr(rv, 'to_json'): return jsonify(rv.to_json()) return Flask.make_response(self, rv)
  • 26.
    Customized Creation Example classUser(object): def __init__(self, id, username): self.id = id self.username = username def to_json(self): return { 'id': self.id, 'username': self.username } app = CustomFlask(__name__) @app.route('/') def index(): return User(42, 'john')
  • 27.
    4 Server Sent Events
  • 28.
    Basic Overview ✤ OpenSocket ✤ Sends "data: <data>rnrn" packets ✤ Good idea for gevent/eventlet, bad idea for kernel level concurrency
  • 29.
    Subscribing from redis importRedis from flask import Response, stream_with_context redis = Redis() @app.route('/streams/interesting') def stream(): def generate(): pubsub = redis.pubsub() pubsub.subscribe('interesting-channel') for event in pubsub.listen(): if event['type'] == 'message': yield 'data: %srnrn' % event['data'] return Response(stream_with_context(generate()), direct_passthrough=True, mimetype='text/event-stream')
  • 30.
    Publishing from flask importjson, redirect, url_for @app.route('/create-something', methods=['POST']) def create_something(): create_that_thing() redis.publish('interesting-channel', json.dumps({ 'event': 'created', 'kind': 'something' })) return redirect(url_for('index'))
  • 31.
    Don't be Afraidof Proxying ✤ gunicorn/uwsgi blocking for main app ✤ gunicorn gevent for SSE ✤ nginx for unification
  • 32.
    5 Worker Separation
  • 33.
    supervisor config [program:worker-blocking] command=gunicorn -w4 yourapplication:app -b 0.0.0.0:8000 [program:worker-nonblocking] command=gunicorn -k gevent -w 4 yourapplication:app -b 0.0.0.0:8001
  • 34.
    nginx config server { listen 80; server_name example.com; location /streams { proxy_set_header Host $http_host; proxy_pass http://localhost:8001/streams; } location / { proxy_set_header Host $http_host; proxy_pass http://localhost:8000/; } }
  • 35.
    6 Signing Stuff
  • 36.
    Basic Overview ✤ Useitsdangerous for signing information that roundtrips ✤ Saves you from storing information in a database ✤ Especially useful for small pieces of information that need to stay around for long (any form of token etc.)
  • 37.
    User Activation Example fromflask import abort import itsdangerous serializer = itsdangerous .URLSafeSerializer(secret_key=app.config['SECRET_KEY']) ACTIVATION_SALT = 'x7fxfbxc2(;rxa8Ox16{' def get_activation_link(user): return url_for('activate', code=serializer.dumps(user.user_id, salt=ACTIVATION_SALT)) @app.route('/activate/<code>') def activate(code): try: user_id = serializer.loads(code, salt=ACTIVATION_SALT) except itsdangerous.BadSignature: abort(404) activate_the_user_with_id(user_id)
  • 38.
    7 Customization
  • 39.
    Simple Cache Busting fromhashlib import md5 import pkg_resources ASSET_REVISION = md5(str(pkg_resources.get_distribution( 'Package-Name').version)).hexdigest())[:14] @app.url_defaults def static_cache_buster(endpoint, values): if endpoint == 'static': values['_v'] = ASSET_REVISION
  • 40.
    Disable Parsing from flaskimport Flask, Request class SimpleRequest(Request): want_form_data_parsed = False data = None app = Flask(__name__) app.request_class = SimpleRequest
  • 41.
    8 Secure Redirects
  • 42.
    Redirect Back from urlparseimport urlparse, urljoin def is_safe_url(target): ref_url = urlparse(request.host_url) test_url = urlparse(urljoin(request.host_url, target)) return test_url.scheme in ('http', 'https') and ref_url.netloc == test_url.netloc def is_different_url(url): this_parts = urlparse(request.url) other_parts = urlparse(url) return this_parts[:4] != other_parts[:4] and url_decode(this_parts.query) != url_decode(other_parts.query) def redirect_back(fallback): next = request.args.get('next') or request.referrer if next and is_safe_url(next) and is_different_url(next): return redirect(next) return redirect(fallback)
  • 43.
    Q&A http://fireteam.net/ —Armin Ronacher — @mitsuhiko